1 to 25 of 45 OWASP Jobs in the UK

Terraform) Containerisation (Docker, AKS) and serverless (Azure Functions) Monitoring and observability (Application Insights, Log Analytics) Secrets management and vulnerability scanning (Key Vault, SonarQube, OWASP) Architecture & Design Microservices and event-driven design (Service Bus, Event Grid, Kafka) Domain-Driven Design (DDD) principles Resilient and scalable system patterns (circuit breakers, retries) Integration ...

awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs ...

awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs ...

awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs ...

performing penetration testing, secure code review, software composition analysis, static, dynamic and manual code review Experience identifying and remediating common vulnerabilities, such as OWASP Top 10 Hands-on experience with security scanning tools Proven experience in secure coding practices and vulnerability assessment Experience securing hardware products controlled by software would ...

equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic approach to security ...

tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic ...

tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic ...

tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic ...

tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic ...

junior consultants through mentoring and peer review. Essential Skills and Experience: Proven experience delivering penetration tests in commercial or consultancy settings. Strong understanding of OWASP Top 10/ASVS, common exploitation techniques and mitigations, network protocols, Active Directory, and Windows/Linux environments, and cloud security fundamentals. Hands-on ability ...

development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates ...

competency - Cloud security awareness (AWS/Azure/GCP + IAM principles) - Scripting/automation skills (Python, PowerShell, Bash) - Understanding of secure coding/OWASP Top 10 - Working knowledge of ISO 27001, NIST, Cyber Essentials - Incident triage, log analysis, and threat investigation capability - Strong communication, problem solving, and teamwork skills ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB Contributing to DevSecOps delivery pipelines, using tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services Applying Site Reliability Engineering principles to ensure solutions are resilient, reliable and cost-effective Supporting clients and end users in making technical product decisions ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB Contributing to DevSecOps delivery pipelines, using tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services Applying Site Reliability Engineering principles to ensure solutions are resilient, reliable and cost-effective Supporting clients and end users in making technical product decisions ...

across diverse teams and projects. Experience in managing and mentoring technical security professionals. Desirable Familiarity with secure development practices and application security frameworks (e.g. OWASP). Experience with using Akamai. Knowledge of Zero Trust architecture principles. Certifications such as CISSP, CCSP, or SABSA. Additional Responsibilities Drive security architecture reviews ...

across diverse teams and projects. · Experience in managing and mentoring technical security professionals. Desirable · Familiarity with secure development practices and application security frameworks (e.g. OWASP). · Experience with using Akamai. · Knowledge of Zero Trust architecture principles. · Certifications such as CISSP, CCSP, or SABSA. Additional Responsibilities · Drive security architecture reviews ...

technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities; ability to effectively communicate methodologies and techniques with development teams. Utilize tools such as BurpSuite, Nessus, Nmap, Kali ...

previously produced code * Docker * Laravel Livewire/Inertia * DevOps * Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines You will be able to be part of something special. You will be given so much autonomy, and it is a true green field ...

Strong experience with cloud platforms, particularly AWS, and infrastructure-as-code tools like Terraform or CloudFormation. Solid understanding of secure software development practices, including OWASP guidelines and threat modelling. Proven ability to produce high-quality technical artefacts such as architectural diagrams, ADRs, design documentation, and runbooks. Hands-on experience with ...

years in penetration testing or offensive security. Strong hands-on experience with tools like Burp, Nmap, Metasploit, Cobalt Strike, Nessus, etc. Deep knowledge of OWASP, MITRE ATT&CK, and modern attack techniques. Scripting experience (Python, PowerShell, etc.). Industry certifications such as OSCP, OSCE, CREST CRT/CCT, GPEN. Bonus ...

Cloud: IaaS, PaaS, SaaS, M365, Azure, Cloud Security, Azure DevOps. Applications: .NET, MS Dynamics, SQL Server, SSRS, M365 Apps, Exchange, SharePoint, IIS, Apache. Security: OWASP, Firewalls, ISO27001, Azure Security Benchmark, Microsoft Defender, zScaler. Networking: Switches, Firewalls, ExpressRoute, MPLS, Routing Protocols, CASB, Azure FrontDoor. Servers: VMware, Windows Server (Apply online only ...

phases. Experience working in Agile and/or Waterfall delivery models. Understanding of API technologies, integration patterns, and associated testing approaches. Working knowledge of OWASP standards and secure testing practices. Hands-on experience delivering end-to-end test solutions across distributed software ecosystems. Experience embedding testing within modern CI/ ...

automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support to IT/Digital teams. Knowledge of NIST, CIS, ISO, COBIT, OWASP, and willingness to work out of hours/travel when needed. Desirable: Experience in MxDR/SOC support, security technologies (IDS/IPS, SIEM, firewalls ...

such as: Qualys, Rapid7, Tanium, Axonius, Armis, or other. Experience applying the following models to an enterprise security program: CMMI, ISO/IEC 2700, OWASP SAMM, NIST, SMM SANS Security Maturity Model. Experience developing security reports, trends, and metrics analysis. Experience with the application of some of the following frameworks ...